Upgrade multisig signer configuration (M/N)
Midas's assessment for RD-F-026 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
Gnosis Safe 0xB60842E9: threshold=1, total owners=3 (1-of-3). Owners: 0x8003544D (EOA), 0x82B30194 (itself a Safe 1.4.1 proxy), 0xC50BD843 (EOA). Any single signer can unilaterally execute upgrades routed through the Safe. ProxyAdmin owner EOA is effectively 1/1. Red: 1-of-3 is below peer-cohort norm for $161M TVL.
Sources #
- URLSafe Transaction Service — Midas admin Safe configSafe API response: {threshold:1, owners:[0x8003544D, 0x82B30194, 0xC50BD843]}retrieved 2026-05-16
- Safe signer 0x82B30194 — Etherscan0x82B30194 is a Safe 1.4.1 proxy (itself a Safe) — confirmed via Etherscan contract typeretrieved 2026-05-16
Methodology #
Read `threshold` and `getOwners()` on the multisig controlling upgrade / sensitive ops. Store as `required` (M) and `total` (N); render as "M/N". For EOA admins record `required=1, total=1` (display "1/1"). Null when admin is immutable or full DAO with no fixed signer set.
See the full factor methodology and distribution across all protocols →